JP5071746B2 - Transmitter - Google Patents

Abstract

The present invention relates to an information processing apparatus allowing proper communication with a communication partner in accordance with a communication time of the communication partner. A reception control unit 41 receives a random challenge (RC) from a transmission terminal 11 and supplies it to a generation unit 42. The reception control unit 41 transmits an RC reception message indicating an RC reception to a transmission side. The generation unit 42 executes a Hash process relative to RC and supplies resultant authentication data to a generation unit 43. A transmission control unit 44 controls the generation unit 43 at a timing before a response request command from the transmission side is received, to make the generation unit 43 generate a response message containing authentication data corresponding to the response request command, and when the response request command is received, transmits the response message to a transmission destination terminal. The present invention is applicable to a content providing system.

Description

The present invention relates to a transmission equipment, in particular, to transmission equipment which is to be able to properly measure the communication time with the communication partner.

  In recent years, a public wide area network represented by the Internet (hereinafter referred to as a WAN (Wide Area Network)) and a local network (hereinafter referred to as a LAN (Local Area Network)) provided in a general house. As data spreads, various types of data communication via those networks are actively performed.

  When video or music content is transmitted over a network, authentication and key exchange are performed with the communication partner device to protect the copyright, and the content is encrypted and transmitted. (For example, refer nonpatent literature 1).

DTCP Specification Volume 1 Version 1.3 (Information Version) http://www.dtcp.com/daTa/info_20040107_dtcp_Vol_1_1p3.pdf

  Here, from the viewpoint of copyright, copying and transmission within a home are permitted, but there are cases where it is desired to restrict transmission of content between other homes connected by a WAN. For example, content recorded on television broadcasts can be used for private use (in the home), but transmission to others via the Internet is considered to violate copyright, so such restrictions are necessary. Become.

  Under this restriction, a device (sending device) that transmits copyright-protected content is connected to the other device (receiving device) that receives the content in the same LAN or connected through the WAN (Internet). It is necessary to judge whether.

  For example, whether the communication partner is connected through the WAN (Internet) by checking whether the communication partner is in the same subnet from the IP address, or by using the number of IP routers (Hop Count) through which the IP communication packet passed Can know.

  However, even if communication is via the WAN (Internet), it is possible to connect as if they were in the same subnet connected without going through an IP router, if technology such as VPN (Virtual Private Network) is used. It is. That is, it is possible to obtain content illegally.

  The present invention has been made in view of such a situation, and determines a communication distance based on a response time of a receiving device with respect to a predetermined command, for example, determines whether or not it is connected to the same LAN as a transmitting device. For the purpose.

  A transmission apparatus according to an aspect of the present invention is a transmission apparatus that transmits content recorded by broadcasting, and is shared between a transmission unit that transmits a response request command for requesting a response message to the reception apparatus and the reception apparatus An expected value generating unit that generates an expected value based on the data, a receiving unit that receives the response message including the authentication data generated based on the shared data from the receiving device, and the receiving device A response time measuring unit for measuring a response time representing a time from when the response request command is transmitted to when the response message is received from the receiving device; and the expectation generated by the expectation value generating unit An authentication unit that authenticates the receiving device as a transmission target of the content when a value matches the authentication data received by the receiving unit; A determination unit that determines whether the content can be transmitted to the reception device based on an authentication result by the authentication unit and the response time measured by the response time measurement unit, and the transmission unit further includes: The transmitting device transmits the content to the receiving device existing in the same subnet, which is determined by the determining unit to be able to transmit the content.

  According to an aspect of the present invention, a response request command for requesting a response message is transmitted to a receiving device, an expected value is generated based on shared data shared with the receiving device, and based on the shared data From the time when the response message including the authentication data generated in this way is received from the receiving device and the response request command is transmitted to the receiving device, until the response message from the receiving device is received When the response time representing the time is measured and the generated expected value matches the received authentication data, the receiving device is authenticated as the content transmission target, the authentication result, and the response Based on the time, it is determined whether the content can be transmitted to the receiving device, and it is determined that the content can be transmitted. The reception apparatus present within a subnet, wherein the content is transmitted.

According to one aspect of the present invention, the response time of the receiving device can be appropriately measured.

It is a figure which shows the usage example of the information communication system to which this invention is applied. It is a block diagram which shows the structural example of the terminal of FIG. It is a block diagram which shows the structural example of the transmission availability determination part of FIG. It is a block diagram which shows the structural example of the response control part of FIG. It is a flowchart explaining a transmission permission / inhibition determination process and a response process. It is a figure explaining the production | generation method of an expected value and authentication data. It is a figure explaining the other production | generation method of an expected value and authentication data. It is a figure explaining operation | movement of the terminal of FIG. It is a block diagram which shows the other structural example of the transmission availability determination part of FIG. It is a block diagram which shows the other structural example of the response control part of FIG. It is a flowchart explaining the other transmission propriety determination processing. It is a flowchart explaining another response process. It is another figure explaining operation | movement of the terminal of FIG. It is another figure explaining operation | movement of the terminal of FIG. It is another figure explaining operation | movement of the terminal of FIG. And FIG. 16 is a block diagram illustrating a configuration example of a personal computer.

  FIG. 1 shows a configuration example of an information communication system including a terminal 11 to which the present invention is applied.

  LANs 1-1 and 1-2 (hereinafter referred to as a unit, LAN1, if it is not necessary to distinguish them individually) are connected to each other via WAN2 represented by the Internet. .

  The LAN 1-1 is provided in a house, for example, and is of a scale that is used by a specific individual (or family), and includes a personal computer and AV via a switching hub (not shown). A terminal 11-1 and a terminal 11-2 such as devices are connected. The connection between the LAN 1-1 and the terminals 11-1 and 11-2 is, for example, by a high-speed interface such as Ethernet (registered trademark) (100BASE-TX). Terminals 11-1 and 11-2 can be connected to LAN1-2 via LAN1-1 and WAN2.

  The LAN 1-2 is configured in the same manner as the LAN 1-1, and the terminal 11-3 is connected to the LAN 1-2.

  Each terminal 11 is a legitimate device registered in the information communication system, and includes a transmission availability determination unit 21, a response control unit 22, a communication unit 23, and a transmission data storage unit 24 as shown in FIG. It is configured.

  When transmitting predetermined data to another terminal 11 (receiving-side terminal 11), the transmission permission / inhibition determining unit 21 receives the receiving-side terminal 11 (more precisely, the response control unit 22 through the communication unit 23). ) And as described later, it is authenticated whether or not the receiving terminal 11 is a legitimate device in the information communication system, and the response time of the receiving terminal 11 with respect to a predetermined request is received. It is measured as the communication time with the terminal 11 on the side.

  The transmission permission / inhibition determination unit 21 determines whether or not to transmit data to the receiving terminal 11 based on the authentication result of the receiving terminal 11 and the communication distance determination result based on the response time.

  For example, when the terminal 11 on the receiving side is connected to a different LAN 1 from the terminal 11 on the transmitting side (connected via the WAN 2 and the so-called communication distance is long), the response time is connected to the same LAN 1 For example, when communication is restricted within the same LAN 1, the transmission availability determination unit 21 determines that the reception-side terminal 11 is connected to the transmission-side terminal from the measured response time. It is determined whether or not the terminal 11 is connected to the same LAN 1 and whether or not data transmission is possible is determined based on the determination result and the authentication result of the terminal 11 on the receiving side.

  That is, in the example of FIG. 1, when the terminal 11-1 (transmission side) transmits data to the terminal 11-2 (reception side), the transmission availability determination unit 21 of the terminal 11-1 From the response time, it is determined that the terminal 11-2 is connected to the LAN 1-1, and data transmission is performed. On the other hand, when the terminal 11-1 transmits data to the terminal 11-3, the transmission permission determination unit 21 of the terminal 11-1 determines that the terminal 11-3 is connected to the LAN 1-1 based on the measured response time of the terminal 11-3. It is determined that it is connected to a different LAN (LAN1-2), and data transmission is not performed.

  Note that such communication control based on the communication distance can be applied to a content distribution business in which content such as a movie is distributed in advance to a certain region and distributed to other regions at a later date.

  Returning to FIG. 2, when the response control unit 22 receives transmission of predetermined data from the transmission side terminal 11, the response side control unit 22 transmits the transmission side terminal 11 via the communication unit 23 (more precisely, the transmission permission / inhibition determination unit 21) By communicating as will be described later, information necessary for the authentication and appropriate measurement of the response time in the terminal 11 on the transmission side is transmitted to the terminal 11 on the transmission side.

  The communication unit 23 is connected to the LAN 1 and performs communication with the terminal 11 in the same LAN 1 or the terminal 11 connected to a different LAN 1 via the WAN 2.

  The transmission data storage unit 24 stores predetermined data transmitted to the terminal 11 on the receiving side.

  FIG. 3 shows a configuration example of the transmission permission / inhibition determination unit 21 of the terminal 11.

  The random challenge generation unit 31 generates a pseudo-random number (hereinafter referred to as a random challenge) having a predetermined number of bits, and supplies it to the random challenge transmission control unit 32 and the expected value generation unit 33.

  The random challenge transmission control unit 32 transmits the random challenge supplied from the random challenge generation unit 31 to the receiving terminal 11 via the communication unit 23. The random challenge transmission control unit 32 also receives a message (hereinafter referred to as an RC reception message) indicating that a random challenge has been transmitted, which is transmitted from the terminal 11 on the receiving side, via the communication unit 23. The command transmission control unit 34 is notified that the RC reception message has been received.

  The expected value generation unit 33 responds to the random challenge supplied from the random challenge generation unit 31, for example, HMAC (Keyed-Hashing for Message Authentication, IETF RFC 2104) using a secret key shared with the terminal 11 on the receiving side. By performing hash processing (so-called keyed hash processing) using an algorithm, an expected value of authentication data generated from a random challenge is generated at the receiving terminal 11 and supplied to the determination unit 35. The expected value generation unit 33 can also generate an expected value by performing a keyed hash process on information obtained by concatenating information unique to the terminal 11 (for example, device ID) preset in the terminal 11 and a random challenge.

  Note that the secret key used in the hash process is securely distributed to a regular device of the information communication system at a predetermined timing.

  The command transmission control unit 34 is a command for requesting a response (hereinafter referred to as a response request command) when the random challenge transmission control unit 32 is notified that the RC reception message has been received or according to an instruction from the determination unit 35. ) Is transmitted to the terminal 11 on the receiving side via the communication unit 23.

  A message transmitted from the terminal 11 on the receiving side (hereinafter referred to as a response message) is received as a response to the transmitted response request command via the command transmission control unit 34 or the communication unit 23, and is determined as a determination unit. 35. In the response message, authentication data generated from the random challenge transmitted by the random challenge transmission control unit 32 is incorporated.

  After transmitting the command transmission control unit 34 or the response request command, the response time measuring unit 36 is controlled to start measuring the response time, and when a response message is received as a response to the response request command, End time measurement.

  Based on the authentication data incorporated in the response message from the command transmission control unit 34 and the expected value of the authentication data generated by the expected value generation unit 33, the determination unit 35 determines that the receiving terminal 11 It authenticates whether it is a legitimate device in the information communication system. The determination unit 35 also determines whether or not the response time measured by the response time measurement unit 36 exceeds a predetermined time TL, and determines the communication distance (connected to the same LAN 1 as the terminal 11 on the transmission side). Determination).

  The determination unit 35 determines whether or not data can be transmitted based on the authentication result of the terminal 11 on the receiving side and the determination result of the communication distance. Based on the determination result, the determination unit 35 controls the communication unit 23 to transmit the data stored in the transmission data storage unit 24 to the terminal 11 on the reception side.

  The response time measuring unit 36 operates a built-in timer according to an instruction from the command transmission control unit 34 and measures the response time of the terminal 11 on the receiving side.

  FIG. 4 shows a configuration example of the response control unit 22 of the terminal 11.

  The random challenge reception control unit 41 receives the random challenge transmitted from the terminal 11 on the transmitting side (more precisely, the transmission permission / non-permission determination unit 21) via the communication unit 23, and receives the challenge from the authentication challenge generator 42. To supply. The random challenge reception control unit 41 also transmits an RC reception message (a message indicating that the random challenge has been received) to the transmitting terminal 11 via the communication unit 23, and at that time, the RC reception message is transmitted. Is sent to the response message transmission control unit 44.

  For the random challenge supplied from the random challenge reception control unit 41, the authentication data generation unit 42 has the same keyed hash process as that in the terminal 11 on the transmission side (the expected value generation unit 33 of the transmission permission determination unit 21). To generate authentication data that cannot be predicted by a third party, and supply the authentication data to the response message generator 43.

  The response message generation unit 43 generates a response message incorporating the authentication data supplied from the authentication data generation unit 42 under the control of the response message transmission control unit 44 and supplies the response message to the response message transmission control unit 44.

  The response message transmission control unit 44 receives the response request command transmitted from the terminal 11 on the transmission side via the communication unit 23.

  The response message transmission control unit 44 controls the response message generation unit 43 to receive the response request command at a timing before receiving the response request command (at a timing before the response request command is transmitted from the terminal 11 on the transmission side). A response message in which authentication data corresponding to the response request command is generated is generated, and when the response request command is received, the response message is transmitted to the destination terminal 11 via the communication unit 23.

  Next, the operation of the transmission availability determination unit 21 (FIGS. 2 and 3) of the terminal 11 when performing transmission availability determination processing will be described with reference to the flowchart of FIG.

  In step S <b> 1, the random challenge generation unit 31 of the transmission availability determination unit 21 of the terminal 11 (the terminal 11 on the transmission side) generates a random challenge and supplies it to the random challenge transmission control unit 32 and the expected value generation unit 33. .

  In step S2, the random challenge transmission control unit 32 transmits the supplied random challenge to the terminal 11 on the receiving side via the communication unit 23. In step S3, the expected value generation unit 33 supplies the supplied random challenge. Is subjected to keyed hash processing to generate an expected value of authentication data generated by the receiving terminal 11.

  In this example, since the terminal 11 on the transmission side transmits a response request command at most N (= 1, 2,...) To determine whether or not data transmission is possible, it can be transmitted here. N expected values of authentication data corresponding to the N response request commands are generated.

  The N expected values are obtained by, for example, dividing the data obtained as a result of performing the keyed hash process on the random challenge into a plurality of pieces, and generating N expected values from the obtained data. be able to. In the case of the example in FIG. 6, data obtained as a result of performing keyed hash processing on a random challenge is divided into N pieces, and N expected values 1 to N are generated.

  Further, it is possible to repeatedly perform a keyed hash process for a random challenge a plurality of times, and generate N expected values from the data obtained for each process. In the case of the example in FIG. 7, the keyed hash process for the random challenge is repeated N times, and N pieces of data obtained for each process are expected values. In FIG. 7, the expected value 1 is obtained as a result of performing the keyed hash process once on the random challenge, and the expected value 2 is the result of further performing the keyed hash process on the expected value 1. It is obtained.

  Returning to FIG. 5, in step S <b> 4, the random challenge transmission control unit 32 transmits an RC reception message indicating that the random challenge transmitted in step S <b> 2 has been received, which has been transmitted from the terminal 11 on the receiving side as will be described later. (Step S23), received via the communication unit 23, and notifies the command transmission control unit 34 to that effect. In step S5, the command transmission control unit 34 initializes 1 to a counter i indicating what number of response request commands are transmitted (transmission order).

  Next, in step S6, the command transmission control unit 34 transmits a response request command to the receiving terminal 11 via the communication unit 23. In step S7, the command transmission control unit 34 controls the response time measurement unit 36 to respond to the response time. Start measuring.

  In step S8, the command transmission control unit 34 sends a response message, which is transmitted from the terminal 11 on the receiving side as described later, in response to the response request command transmitted in step S6, via the communication unit 23. The received time is supplied to the determination unit 35, and in step S9, the response time measurement unit 36 is controlled to end the measurement of the response time. That is, the time obtained by the time measurement starting at step S7 and ending at step S9 is the response time of the terminal 11 on the receiving side.

  In step S <b> 10, the determination unit 35 includes the authentication data embedded in the response message supplied from the command transmission control unit 34 and the expected value (specifically, the authentication data generated by the expected value generation unit 33). , It is determined whether or not the response request commands transmitted in the order indicated by the counter i (hereinafter, the expected value corresponding to the i-th response request command) match, and they are determined to match. In this case, the terminal 11 on the receiving side is authenticated as a legitimate terminal in the information communication system, and the process proceeds to step S11.

  In step S11, the determination unit 35 determines whether or not the response time of the terminal 11 on the receiving side with respect to the i-th response request command measured by the response time measurement unit 36 exceeds a predetermined time TL. judge. For example, the time TL is a communication time required between the terminals 11 connected to the same LAN 1. That is, if the response time exceeds the time TL, the receiving terminal 11 is connected to a different LAN 1 from the transmitting terminal 11 and if the response time does not exceed the time TL (response time = including the time TL), the same LAN 1 It is possible to determine that it is connected to (communication distance can be determined).

  When it is determined in step S11 that the time TL is exceeded, the process proceeds to step S12, where the determination unit 35 notifies the command transmission control unit 34 of the result, and the command transmission control unit 34 then sets the counter i to 1. Increment only.

  In step S13, the command transmission control unit 34 determines whether or not the counter i = N + 1. If it is determined that the counter i is not N + 1, the process returns to step S6 after a predetermined time has elapsed. When it is determined in step S13 that the counter i = N + 1 (that is, when the response request command has been transmitted N times), or in step S10, the receiving side terminal 11 receives the regular information in this information communication system. When it is determined that the device is not a device, the process proceeds to step S14, and the determination unit 35 is notified to that effect. At that time, the determination unit 35 disables data transmission to the receiving-side terminal 11 and controls the communication unit 23 to prohibit transmission of data stored in the transmission data storage unit 24 to the receiving-side terminal 11. .

  If it is determined in step S11 that the response time for the i-th transmitted response request command does not exceed the time TL, that is, the receiving terminal 11 is a regular device in the information communication system, For example, when the terminal 11 is connected to the same LAN 1 as the terminal 11 on the transmission side, the process proceeds to step S15, and the determination unit 35 controls the communication unit 23 and is stored in the transmission data storage unit 24. Data is transmitted to the terminal 11 on the receiving side.

  When it is determined in step S14 or step S15 whether or not data transmission to the receiving terminal 11 is possible, the determination unit 35 sends a message indicating that transmission determination is complete via the communication unit 23 (hereinafter, determination end message). Is transmitted to the terminal 11 on the receiving side. Thereafter, the transmission permission / inhibition determination process ends.

  Next, the operation of the response control unit 22 (FIGS. 2 and 4) of the terminal 11 when performing response processing will be described with reference to the flowchart of FIG.

  In step S21, the random challenge reception control unit 41 of the response control unit 22 of the terminal 11 (receiving terminal 11) receives the random challenge transmitted from the destination terminal 11 (step S2) via the communication unit 23. Are received and supplied to the authentication data generation unit 42. In step S <b> 22, the authentication data generation unit 42 performs the keyed hash process in the transmission availability determination unit 21 (expected value generation unit 33) of the terminal 11 on the transmission side with respect to the random challenge supplied from the random challenge reception control unit 41. The same keyed hash process as in (Step S3) is performed to generate authentication data, which is supplied to the response message generator 43.

  In this example, since a maximum of N response request commands can be received, N authentication data to be compared with the expected value corresponding to the response request command are generated (step S10). N pieces of authentication data are generated by the same method as the expected value generation method (FIGS. 6 and 7).

  When the authentication data is generated in this way, in step S23, the random challenge reception control unit 41 transmits the RC reception message to the terminal 11 on the transmission side via the communication unit 23, and sends a response message to that effect. The control unit 44 is notified.

  In step S24, the response message transmission control unit 44 initializes 1 to a counter j indicating what number of response request commands to be received from now on, and controls the response message generation unit 43 in step S25. Thus, a response message incorporating authentication data corresponding to response request commands received in the order indicated by the counter j (hereinafter referred to as the jth response request command received) is generated.

  Next, in step S26, when the response message transmission control unit 44 receives the response request command transmitted from the destination terminal 11 (step S6) via the communication unit 23, in step S27, in step S25. A response message in which authentication data corresponding to the generated jth received response request command is incorporated is transmitted to the terminal 11 on the transmission side via the communication unit 23. As a result, as described above, at the transmitting terminal 11 (in step S10), the authentication data corresponding to the response request command received j-th (sent i-th) and i-th transmitted The expected value of the response request command (jth received) is compared.

  In step S28, the response message transmission control unit 44 of the response control unit 22 of the reception-side terminal 11 determines whether or not a determination end message (step S16) transmitted from the transmission-side terminal 11 has been received. If it is determined that it has not been received within the time, the process proceeds to step S29. In step S29, the response message transmission control unit 44 increments the counter j by 1, and determines in step S30 whether or not the counter j = N + 1.

  When it is determined in step S30 that the counter j is not N + 1 (that is, when the response request command has not been received N times), the process returns to step S25, and the response request command received next is thereafter Execute the process.

  When the determination end message is received in step S28 or when it is determined in step S30 that the counter j = N + 1 (that is, when the response request command is received N times), the response control unit 22 The response process ends.

  As described above, the communication distance is determined based on the response time only for the receiving-side terminal 11 authenticated based on the authentication data (step S22) generated from the random challenge and the expected value (step S3). (If NO is determined in step S10, the process in step S11 is skipped), so that data can be prevented from being transmitted to a device impersonating a regular device (regular The device that impersonates the device receives a response request command, sends a response request message, and no data is sent to that device).

  When the terminal 11 on the transmission side includes the newly generated random challenge in the response request command and transmits it to the terminal 11 on the reception side (step S6), and the response terminal command is received at the terminal 11 on the reception side (Step S26) The authentication data generated in advance (Step S22) is linked to the random challenge embedded in the response request command, or a logical operation of both is performed to generate new authentication data. It is also possible to send back a response message incorporating (step S27). At this time, in the terminal 11 on the transmission side, the expected value compared with the new authentication data in step S10 is linked to the expected value generated in step S3 and the random challenge incorporated in the response request command, or Both logical operations are performed and generated.

  In this way, by using the random challenge embedded in the response request command to generate the authentication data and the expected value, the receiving terminal 11 has received the response request command from the transmitting terminal 11 Only after that can the reply message be sent. Therefore, in order to shorten the response time, it is possible to prevent an illegal act such as transmitting a response message before receiving a response request command.

  Further, as described above, since the receiving terminal 11 generates the authentication data and the response message in which the authentication data is embedded before receiving the response request command (steps S22 and S25), the response request command A response message can be returned to the transmitting terminal 11 immediately after receiving (step S27).

  For example, when authentication data and a response request message are generated after receiving a response request command, the response time measured by the terminal 11 on the transmission side includes the time required for the processing. The response time as communication time cannot be measured accurately. However, by making it possible to send a response message immediately after receiving a response request command as in the present invention, the response time as the communication time is accurately measured.

  In the above, the transmitting terminal 11 generates a random challenge (step S1) and provides the random challenge to the receiving terminal 11 (step S2). However, the receiving terminal 11 generates and transmits the random challenge. The terminal 11 can be provided.

  In the above description, the case where the secret key is shared between the transmitting terminal 11 and the receiving terminal 11 has been described as an example. However, when the secret key is not shared, the Diffie-Hellman key exchange (Diffie -Hellman key exchange) algorithm can be used to share keys. In this case, the partner with whom the key has been exchanged is confirmed based on a certificate or the like indicating that it is the partner whose response time is to be measured. After the key exchange, the key itself obtained by the key exchange can be used as the authentication data and the expected value, or the hash data with the key exchanged with the random number as described above is performed, and the authentication data and the expected value are obtained. You can also get it.

  Further, in the above, in the terminal 11 on the transmitting side, the authentication data (hereinafter referred to as authentication data RR) generated in the terminal 11 on the receiving side (step S22) and the response generated in the terminal 11 on the transmitting side. The receiving terminal 11 is authenticated based on the expected value (hereinafter referred to as the expected value QR) (step S3) (step S10), but the receiving terminal 11 also receives a response request from the transmitting terminal 11 The terminal 11 on the transmission side can be authenticated based on the command authentication data (hereinafter referred to as authentication data RS) and the expected value (hereinafter referred to as the expected value QS).

  In the example of FIG. 5, if the receiving terminal 11 receives the response request command (step S26), it immediately sends back a response message (step S27). For example, as shown in FIG. The third device x is inserted into the same LAN 1 as the transmission device), first the device x sends a response request command to the receiving device (S111), obtains a response message from the receiving device (S112), and then transmits. When a response request command is received from the device (S121), by returning the acquired response message (S122), the device x can impersonate a regular device.

  Therefore, if the terminal 11 on the receiving side also authenticates the terminal 11 on the transmitting side when returning the response message, such a fraud can be prevented (preventing the response message from being returned to an unauthorized device). can do).

  FIG. 9 shows a configuration example of the transmission permission / inhibition determining unit 21 and FIG. 10 shows a configuration example of the response control unit 22 when the receiving side terminal 11 authenticates the transmitting side terminal 11 in this way.

  Similar to the random challenge generation unit 31 in FIG. 3, the random challenge generation unit 51 of the transmission availability determination unit 21 generates a pseudo random number sequence having a predetermined number of bits as a random challenge RC, and generates an expected value generation unit 52 and authentication data. To the unit 53.

  The expected value generation unit 52 responds to the random challenge RC supplied from the random challenge generation unit 51, for example, the reception side terminal 11 (authentication data generation unit 73) using a secret key shared with the reception side terminal 11. The keyed hash processing similar to that in the above is performed to generate the expected value QR of the authentication data RR of the terminal 11 on the receiving side (the expected value QR having the same value as the corresponding authentication data RR) and supplied to the response authenticating unit 57. .

  The authentication data generation unit 53 performs a keyed hash process using a secret key shared with the receiving-side terminal 11 on the random challenge RC supplied from the random challenge generation unit 51, and a third party cannot predict. Command authentication data RS is generated and supplied to the response request command transmitter 55.

  The control command communication control unit 54 transmits a control command CC such as a start command to the receiving terminal 11 and receives a response message CCR to the control command CC transmitted from the receiving terminal 11.

  The response request command transmission unit 55 transmits the response request command MC including the authentication data RS generated by the authentication data generation unit 53 to the receiving terminal 11 via the communication unit 23.

  The response receiving unit 56 receives the response message MCR transmitted from the receiving terminal 11 as a response to the transmitted response request command MC via the communication unit 23, and authenticates the response embedded therein. The data RR is supplied to the response authentication unit 57.

  Based on the authentication data RR of the response from the response receiving unit 56 and the expected value QR of the authentication data RR generated by the expected value generating unit 52, the response authentication unit 57 makes the information communication It authenticates whether the device is a legitimate device in the system, and notifies the control determination unit 58 of the authentication result.

  The control determination unit 58 determines whether or not the response time RTT of the terminal 11 on the receiving side with respect to the response request command MC measured by the response time measurement unit 59 exceeds a predetermined time TL, thereby determining the communication distance. (Determining whether the terminal 11 is connected to the same LAN 1 as the terminal 11 on the transmission side).

  The control determination unit 58 determines whether data can be transmitted to the receiving terminal 11 based on the authentication result of the receiving terminal 11 and the communication distance determination result. The control determination unit 58 controls the communication unit 23 based on the determination result, and causes the data stored in the transmission data storage unit 24 to be transmitted to the terminal 11 on the reception side.

  The response time measuring unit 59 measures the response time RTT of the receiving terminal 11 with respect to the response request command MC in response to notifications from the response request command transmitting unit 55 and the response receiving unit 56.

  Next, the configuration of the response control unit 22 (FIG. 10) will be described.

  The control response communication control unit 71 receives a control command CC transmitted from the transmission-side terminal 11 via the communication unit 23, or transmits a response message CCR to the control command CC to the transmission-side terminal 11. .

  The expectation value generation unit 72 responds to the random challenge RC included in the control command CC received by the control response communication control unit 71 with respect to the transmission side terminal 11 (authentication) using a secret key shared with the transmission side terminal 11. A keyed hash process similar to that in the data generation unit 53) is performed to generate the expected value QS of the command authentication data RS of the terminal 11 on the transmission side (the expected value QS having the same value as the corresponding authentication data RS), and the command It supplies to the authentication part 76.

  The authentication data generation unit 73 performs a keyed hash process using a secret key shared with the transmission-side terminal 11 on the random challenge RC included in the control command CC received by the control response communication control unit 71. Then, authentication data RR of a response that cannot be predicted by a third party is generated and supplied to the response transmission unit 74.

  The response transmission unit 74 receives a response message MCR for the response request command MC from the terminal 11 on the transmission side, including the authentication data RR of the response generated by the authentication data generation unit 73 based on the authentication result by the command authentication unit 76. Then, the data is transmitted to the terminal 11 on the transmission side via the communication unit 23.

  The response request command receiving unit 75 receives the response request command MC transmitted from the terminal 11 on the transmitting side via the communication unit 23, and sends the command authentication data RS incorporated therein to the command authenticating unit 76. Supply.

  Based on the authentication data RS of the command from the response request command receiving unit 75 and the expected value QS of the authentication data RS generated by the expected value generating unit 72, the command authenticating unit 76 It authenticates whether the device is a legitimate device in the information communication system, and notifies the response transmitter 74 of the authentication result.

  Next, the operation of the transmission permission / inhibition determination unit 21 in FIG. 9 will be described with reference to the flowchart in FIG.

  In step S51, the control command communication control unit 54 of the transmission permission / non-permission determination unit 21 of the terminal 11 establishes a TCP connection with the receiving device. It is assumed that the port number for the TCP connection is agreed in advance between the terminal 11 on the transmission side and the device on the reception side. This step may be omitted if a TCP connection has been established in advance between the transmitting device and the receiving device.

  The control command communication control unit 54 transmits a start command (control command CC) indicating that the measurement of the response time RTT is started to the receiving device via the established TCP connection. The start command CC includes a session number SID, a random challenge RC, and the number of retries (measurement count) ks for measuring the response time RTT that can be executed by the terminal 11 on the transmission side.

  The session number SID is a number assigned to a series of authentication processes (one session) for the receiving side device to be performed in the future. By sharing this number between the transmitting side and the receiving side, the authentication process is performed for each session. Can be distinguished.

  In addition, communication of data required for measurement of response time RTT (for example, response request command MC and its response message MCR) is performed by UDP that does not retransmit the packet. It may be considered that the response time RTT is not properly measured such as disappearing. Also, packet transmission may be delayed due to the influence of other communications in the network. Therefore, the response time RTT can be retried several times. The number of retries may vary depending on the settings of the transmitting device and the receiving device. In this example, the number of retries (for example, the maximum number of retries) ks of the transmitting device is ks. Will be notified.

  Next, in step S52, the control command communication control unit 54 receives a response message CCR from the receiving device with respect to the start command CC.

  In this response message CCR, in addition to the session number SID included in the start command CC, the number of retries for the response time RTT measurement in one session determined by the receiver, and the UDP port for receiving the response request command MC The number pb is included. That is, by sending and receiving the start command CC and its response message CCR, the terminal 11 on the transmission side and the device on the reception side allow the number of retries (measurement count) k and session number SID of the response time RTT, and the response request command MC and Agree on a UDP port number pb to be used for sending and receiving the response message MCR.

  Note that the receiving-side device has a smaller value of the number of retries for response time RTT measurement that can be executed by the transmission-side terminal 11 notified via the start command CC and the number of retries for response time RTT measurement that can be executed by the receiving side. This is determined as the number of retries k for the current response time RTT measurement, and is notified to the transmission side device via the response message CCR.

  In step S53, the expected value generation unit 52 performs a keyed hash process in the response control unit 22 (authentication data generation unit 73) of the terminal 11 on the receiving side with respect to the random challenge RC generated by the random challenge generation unit 51. The same keyed hash process is performed to generate the expected value QR of the authentication data RR of the receiving device.

  In this example, since the response time RTT measurement is performed a maximum of k times (the response message MCR of the response request command MC is received a maximum of k times), the authentication data RR included in the k response messages MCR that can be received. Each expected value QR is generated.

  At this time, the authentication data generation unit 53 performs keyed hash processing on the random challenge RC generated by the random challenge generation unit 51 to generate authentication data RS of the command.

  In this example, since response time RTT measurement is performed at maximum k times (because response request command MC is transmitted at maximum k times), authentication data RS for each of k response request commands MC that can be transmitted is generated. .

  In step S54, the value of the counter i built in the control determination unit 58 is initialized to 1. At this time, the expected value generation unit 52 supplies an expected value QR corresponding to the value of the counter i (for example, the i-th generated expected value QRi) to the response authentication unit 57. Further, the authentication data generation unit 53 supplies the authentication data RSi corresponding to the value of the counter i to the response request command transmission unit 55.

  In step S55, the response request command transmission unit 55 includes the session number SID, authentication data RSi supplied from the authentication data generation unit 53 (authentication data RSi corresponding to the value of the counter i among the k pieces of authentication data RS), The response request command MC including the sequence number Ci (the number representing the value of the counter i) is transmitted to the receiving device by UDP communication using the UDP port number pb included in the response CCR of the control command CC.

  When the response request command transmitting unit 55 transmits the response request command MC, the response request command transmitting unit 55 sends a notification STR to that effect to the response time measuring unit 59. Thereby, the response time measurement unit 59 starts measuring the response time.

  In step S56, the response receiving unit 56 determines whether or not the response message MCR from the receiving device has been received. If it is determined that the response message MCR has not been received, the response receiving unit 56 proceeds to step S57 and waits for a response for a predetermined time or more. (It is determined whether or not a predetermined time has elapsed since the response time RTT measurement was started in step S55).

  If it is determined in step S57 that the predetermined time has not yet elapsed, the process returns to step S56, and the subsequent processing is executed. On the other hand, if it is determined in step S57 that the predetermined time has elapsed, the process proceeds to step S62, where it is determined whether or not the value of the counter i is smaller than the number of retries k (whether or not the response time RTT has been measured k times). If it is determined that the value is smaller (when not performed k times), the process proceeds to step S63, the value of the counter i is incremented by 1, and the process returns to step S55.

  In UDP that sends a response request command MC, a packet may not reach the communication partner, and therefore the terminal 11 on the transmission side does not receive a response message MCR even after a predetermined time has passed after sending the response request command MC. The measurement of the next response time RTT is started on the assumption that the measurement of this time has failed (the processing after step S55 is started).

  If it is determined in step S56 that the response message MCR has been received, the process proceeds to step S58, where the response receiving unit 56 reads the authentication data RRj and the sequence number Cj of the response included in the received response message MCR, This is supplied to the response authentication unit 57.

  The response authenticating unit 57 determines whether or not the sequence number Cj supplied from the response receiving unit 56 matches the value of the counter i (sequence number Ci of the transmitted response request command MC).

  The effect of confirming the sequence number Cj of the response message MCR and the sequence number Ci of the response request command MC will be described later.

  If it is determined in step S58 that they do not match, the process returns to step S56, and the subsequent processing is performed. If it is determined that they match, the process proceeds to step S59.

  In step S59, the response receiving unit 56 notifies the response time measuring unit 59 that the response message MCR has been received END. The response time measurement unit 59 ends the response time RTT measurement started in step S55 and supplies the measurement result (response time RTT) to the control determination unit 58.

  In step S60, the response authentication unit 57 determines whether or not the authentication data RRj of the response supplied from the response reception unit 56 matches the expected value QRi of the authentication data RRj generated by the expected value generation unit 52. If it is determined that they match, the receiving terminal 11 is authenticated as a legitimate terminal in the information communication system, and the process proceeds to step S61.

  In step S61, the control determination unit 58 determines whether or not the response time RTT supplied from the response time measurement unit 59 is greater than a predetermined specified time TL.

  The specified time TL is a time that the response time RTT will not exceed if the terminal 11 on the transmission side and the device on the reception side are connected to the same LAN 1. That is, if the response time RTT is longer than the specified time TL, it can be determined that the receiving device is not connected to the same LAN 1 as the transmitting terminal 11. On the other hand, if the response time RTT is not longer than the specified time TL (if it is less than that), it can be determined that the receiving device is connected to the same LAN 1 as the transmitting terminal 11.

  When YES is determined in step S61 (when it is determined by the i-th response time RTT measurement that the receiving side device is not connected to the same LAN 1 as the transmitting side terminal 11) In step S62, the control determination unit 58 determines whether or not the value of the counter i is smaller than k (whether or not the response time RTT measurement has been retried k times) and determines that the value is small (response time). If the RTT measurement has not been performed k times yet), the process proceeds to step S63, and the value of the counter i is incremented by one. At this time, the expected value generation unit 52 supplies the expected value QRi corresponding to the new value of the counter i to the response authentication unit 57, and the authentication data generation unit 53 receives the authentication data RSi corresponding to the new value of the counter i. The response request command transmitter 55 supplies the response request command.

  Thereafter, the process returns to step S55, and the subsequent processing is performed. That is, the response time RTT is measured a maximum of k times until a response message MCR is obtained in which the response time RTT is within the specified time TL.

  If NO is determined in step S61 (when a response message MCR in which the response time RTT is equal to or less than the specified time TL is obtained), the process proceeds to step S64.

  In step S64, the control determination unit 58 indicates that the receiving device is a device capable of transmitting transmission data (a regular device that is connected to the same LAN 1 as the transmitting terminal 11). The communication unit 23 (FIG. 3) is notified. As a result, the communication unit 23 reads predetermined transmission data from the transmission data storage unit 24 and transmits it to the receiving device (terminal 11).

  When it is determined in step S62 that the value of the counter i is equal to or greater than k (when the response time RTT is measured k times and a response with the response time RTT equal to or less than the specified time TL is not obtained). In step S65, the control determination unit 58 indicates that the receiving side device is a device outside the local network (a device not connected to the same LAN 1 as the transmitting side terminal 11). Notify Accordingly, the control command communication control unit 54 transmits an end command CC indicating that the authentication of the receiving device has failed to the receiving device.

  If it is determined in step S60 that the authentication data RRj of the response does not match the expected value QRi, the process proceeds to step S66, and the control determination unit 58 determines that the receiving device is an unauthorized device by using control command communication. The control unit 54 is notified. Accordingly, the control command communication control unit 54 transmits an end command CC indicating that the authentication of the receiving device has failed to the receiving device.

  The transmission permission / inhibition determination process is performed as described above.

  In the above description, k pieces of authentication data RS are generated in step S53. Instead, in step S55, authentication data RS used for the command is generated every time a response request command MC is transmitted. Also good.

  Next, the operation of the response control unit 22 in FIG. 10 will be described with reference to the flowchart in FIG.

  In step S81, the control response communication control unit 71 of the response control unit 22 of the terminal 11 on the reception side cooperates with the device on the transmission side to establish a TCP connection, and from the device on the transmission side via the TCP connection. The transmitted start command CC (step S51) is received. The control response communication control unit 71 supplies the random challenge RC included in the received start command CC to the expected value generation unit 72 and the authentication data generation unit 73.

  Next, in step S82, the response request command receiving unit 75 determines a UDP port number pb for receiving the response request command MC transmitted from the transmitting device.

  The response request command receiving unit 75 also measures the number of retries for the response time RTT measurement that can be executed by the transmission side device included in the control command CC, and the measurement of the response time RTT that the reception side terminal 11 can handle. The smaller of the number of retries is determined as the number of retries k for measuring the response time RTT of this time.

  In step S83, the control response communication control unit 71 sends a response message CCR including the session number SID, the retry time k of the response time RTT measurement, and the UDP port number pb included in the control command CC received in step S81. Is transmitted to the device on the transmission side via the TCP connect established in step S81. The transmitting device receives the response message CCR transmitted here (step S52).

  In step S84, the authentication data generation unit 73 performs a keyed hash process on the random challenge RC supplied from the control response communication control unit 71 to generate response authentication data RR.

  In this example, since the response time RTT measurement is performed a maximum of k times (since the response message MCR of the response request command MC is transmitted a maximum of k times), the authentication data RR of each of the k response messages MCR that can be transmitted is Generated.

  The expected value generation unit 72 is the same as the keyed hash process in the transmission permission determination unit 21 (authentication data generation unit 53) of the terminal 11 on the transmission side for the random challenge RC supplied from the control response communication control unit 71. Keyed hash processing is performed to generate an expected value QS of the authentication data RS of the terminal 11 on the transmission side.

  In this example, since response time RTT measurement is performed at most k times (because response request command MC is received at most k times), the expectation of each of authentication data RS included in k response request commands MC that can be received. The value QS is generated.

  In step S85, the value of the counter j built in the command authentication unit 76 is initialized to 1.

  In step S86, the process waits until a command is received. If it is determined that the command has been received, the process proceeds to step S87, where it is determined whether the received command is a response request command MC (step S55). If it is determined that the response request command MC, the process proceeds to step S88.

  In step S88, the sequence number Ci included in the received command is compared with the counter j, and it is confirmed that the sequence number Ci is greater than or equal to the counter j. If the value is greater than or equal to the counter j, the process proceeds to step S89, where the counter j is set to the value of the sequence number Ci.

  This is a measure for matching the counter j with the sequence number Ci when a command is missing or not in order.

  At this time, the expected value generation unit 72 supplies the command authentication unit 76 with the expected value QS (for example, the jth generated expected value QSj) corresponding to the value of the counter j. Further, the authentication data generation unit 73 supplies authentication data RRj corresponding to the value of the counter j to the response transmission unit 74.

  Next, in step S90, the command authenticating unit 76 authenticates the authentication data RSi incorporated in the response request command MC received by the response request command receiving unit 75, and the expected value QSj (counter generated by the expected value generating unit 72). (expected values generated in the order indicated by j) are determined to match, and if determined to match, the terminal 11 on the transmission side is authenticated as a legitimate terminal in the information communication system, and the step Proceed to S91.

  In step S91, the command authentication unit 76 notifies the response transmission unit 74 that the terminal 11 on the transmission side is a legitimate device. As a result, the response transmission unit 74 transmits a response message MCR including the session number SID, the sequence number Cj indicating the value of the counter j, and the authentication data RRj supplied from the authentication data generation unit 73 to the transmission side device.

  On the other hand, if it is determined in step S90 that they do not match, the process proceeds to step S92, and the command authenticating unit 76 notifies the response transmitting unit 74 to that effect. As a result, the response transmission unit 74 uses the session number SID, the sequence number Cj representing the value of the counter j, and the authentication data RR (= xx) such that authentication of the receiving device (step S60) in the transmitting device fails. The response message MCR including) is transmitted to the transmission side device.

  When the response message MCR is transmitted in step S91 or step S92, the value of the counter j is incremented by 1 in step S93, and then the process returns to step S86, and the subsequent processing is executed.

  In step S88, if the value of the counter j is smaller than the sequence number Ci included in the received command, the process returns to step S86 and the subsequent processing is executed.

  If it is determined in step S87 that the received command is not a response request command (when it is an end command CC (steps S65, S66)), the process ends.

  Next, the process of step S58 in FIG. 11 will be described. In the process of step S58, it is determined whether or not the sequence number Cj of the response message MCR from the receiving device matches the sequence number Ci (value of the counter i) of the response request command MC. Since the correspondence between the request command MC and the response message MCR is confirmed, the distance determination based on the response time RTT is performed based on the response message MCR that does not correspond to the response request command MC (response message MCR of another response request command MC). Not done.

  For example, as shown in FIG. 13, it takes time to transmit the response message MCR in response to the first response request command MC in the receiving device (steps S91 and S92), and the transmitting terminal 11 determines that a timeout has occurred. It is assumed that the second response request command MC is transmitted to the receiving device (step S57). The response message MCR for the first response request command MC is not timed out in relation to the second response request command MC after the second response request command MC is transmitted (step S55) (step S55). It is assumed that the transmission side terminal 11 has received the message in S57) (step S56).

  However, in this case, in the present invention, it is determined that the sequence number (= 1) of the first response message MCR from the receiving device does not match the sequence number (= 2) of the second response request command MC. The terminal 11 on the transmission side waits until the response message MCR for the second response request command MC is received (return to step S56), and the response time RTT even if a non-corresponding response message MCR is received. The distance determination by is not performed.

  Next, the operation of the terminal 11 against fraud will be specifically described.

  For example, it is assumed that an unauthorized device x connected to the same LAN 1 as the transmitting device shown in FIG. 8 transmits a response request command in order to obtain a response from the receiving device. However, since the device x does not have a secret key shared with the receiving device, the authentication data RS necessary for authenticating the transmitting device at the receiving device cannot be obtained. Therefore, as shown in FIG. 14, the device x transmits a response request command MC including inappropriate authentication data RS (=?) To the receiving device, but the receiving device authenticates the authentication of the receiving device. A response message MCR including RR (= xx) is transmitted (step S92). Therefore, even if the device x subsequently responds by transmitting the response message MCR to the transmission device in response to the response request command MC from the transmission device, the device x is not authenticated in the transmission device, and the transmission data is the device. Not sent to x.

  Therefore, as shown in FIG. 15, the unauthorized device x receives the response request command MC from the transmitting device, transmits it to the receiving device, and obtains a response message MCR including appropriate authentication data RR from the receiving device. The device x can also transmit the acquired response message MCR to the transmitting device.

  However, in this example, the response request command MC is transmitted from the transmission device to the device x and from the device x to the reception device, and the response message MCR is transmitted from the reception device to the device x and from the device x to the transmission device. Therefore, the transmission path of the response request command MC and the response message MCR is longer than the normal transmission path (transmission path between the transmitting device and the receiving device). Therefore, in this case, since the response time RTT eventually becomes longer than the specified time TL, it is assumed that the device x is not connected to the same LAN 1 as the transmitting device, and no transmission data is provided to the device x.

  The series of processes described above can be realized by hardware, but can also be realized by software. When a series of processing is realized by software, a program constituting the software is installed in a computer, and the program is executed by the computer, so that the transmission permission / inhibition determining unit 21 and the response control unit 22 described above are executed. Functionally realized.

  FIG. 16 is a block diagram illustrating a configuration of an embodiment of the computer 101 that functions as the transmission permission determination unit 21 and the response control unit 22 as described above. An input / output interface 116 is connected to a CPU (Central Processing Unit) 111 via a bus 115, and the CPU 111 receives a command from an input unit 117 such as a keyboard and a mouse via the input / output interface 116. When input, it is stored in a recording medium such as a ROM (Read Only Memory) 112, a hard disk 114, or a magnetic disk 131, an optical disk 132, a magneto-optical disk 133, or a semiconductor memory 134 attached to the drive 120, for example. The program is loaded into a RAM (Random Access Memory) 113 and executed. Thereby, the various processes described above are performed. Further, the CPU 111 outputs the processing result to the output unit 118 such as an LCD (Liquid Crystal Display) via the input / output interface 116 as necessary. The program is stored in advance in the hard disk 114 or ROM 112 and provided to the user integrally with the computer 101, or provided as a package medium such as the magnetic disk 131, the optical disk 132, the magneto-optical disk 133, or the semiconductor memory 134. Or can be provided to the hard disk 114 via the communication unit 119 from a satellite, a network, or the like.

  In the present specification, the step of describing the program provided by the recording medium is not limited to the processing performed in chronological order according to the described order, but is not necessarily performed in chronological order. It also includes processes that are executed individually.

  Further, in this specification, the system represents the entire apparatus constituted by a plurality of apparatuses.

  DESCRIPTION OF SYMBOLS 1 LAN, 11 Terminal, 21 Transmission permission determination part, 22 Response control part, 23 Communication part, 24 Transmission data storage part, 31 Random challenge generation part, 32 Random challenge transmission control part, 33 Expected value generation part, 34 Command transmission control Unit, 35 determination unit, 36 response time measurement unit, 41 random challenge reception control unit, 42 authentication data generation unit, 43 response message generation unit, 44 response message transmission control unit, 51 random challenge generation unit, 52 expected value generation unit, 53 authentication data generation unit, 54 control command communication control unit, 55 response request command transmission unit, 56 response reception unit, 57 response authentication unit, 58 control determination unit, 59 response time measurement unit, 71 control response communication control unit, 72 expectation Value generator, 73 authentication data generator 74 response transmitter, 75 the response request command reception unit, 76 command authentication unit

Claims (1)

In a transmission device that transmits content recorded by broadcasting ,
A signal unit transmission transmits a response request command for requesting a reply message to the receiving device,
An expected value generating unit that generates an expected value based on shared data shared with the receiving device;
A receiving unit that receives the response message including the authentication data generated based on said shared data from the receiving device,
From the time the response request command is transmitted to the receiving apparatus, the response time measurement unit in which the response message from the receiving device measures the response time represents the time until received,
And the expected value generated by the expected value generation unit, if the authentication data received by the reception unit are matched, the authentication unit for authenticating the receiving apparatus as a transmission target of the content,
Authentication result by the authentication unit, and on the basis of the said response time measured by the response time measuring section, viewed contains a determination unit for determining transmission availability of the content to the receiving device,
The transmission unit further transmits the content to the reception device existing in the same subnet, which is determined by the determination unit to be able to transmit the content.
Transmitter device.

Images